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Identity and Trust 


Digital identity can be understood as the 
information we associate with ourselves, other people, 

and things (Kamoosi, 2020). Or, in other words, 
identity is “how we keep track of people and 
things and, in turn, how they keep track of us” 


(Andrieu, 2017). 


On the Internet, where our interactions are 
conducted remotely, we need mechanisms to 
establish trust, to enable users to verify who 
they’re interacting with at any given time. In 
Kim Cameron’s words “the Internet was built 
without an identity Layer” (Cameron, 2005), a 
state of affairs that can be dangerous to users, 
as it exposes them to fraud, identity theft, 
catfishing, and other kinds of deception. Without 
any mechanisms to verify each others’ identity, 
internet users can only choose between trusting 
their counterparts (and accepting the risks) and 
refusing to engage or interact with online users. 
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+ Centralized identity, federated identity and SSI (gataca.io Blog, 2021). 
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Today, we typically trust centralized record- 
keepers (governments, our bank...) to manage 

our identities for us. These centralized 
authorities keep extensive records of our 
personal information that effectively serve as a 
basis of trust for users when interacting with a 
system. They verify our identity by accessing our 
passports, ID cards, and other credentials. 


Over time, we have also moved to federated identity: 
allowing services to use accounts at platforms 
such as Google and Facebook for authentication. 
In federated systems, users are forced to 

place their trust in “middlemen” who may not 
always have their best interests at heart, or 
who may not take good care of their personal 
information. 


Over the Last twenty years, a movement has 
formed calling for user-centric, decentralized identity. 
This movement asks: who should be allowed to 
create and store the information associated with 
an individual? Can we cut out the middleman 

and still trust in the security of our private 
information and credentials? What if you could 
maintain control over your personal identity and 
share only what is needed? 


One of the goals of decentralized identity is to give 
users control over what personal information 

is shared, with whom, and for which purposes. 

But eliminating an “omniscient” authority that 
verifies trust also creates many technical 
challenges. 
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Enter Self-Sovereign 
Identity 


Self-Sovereign identity (SST) ts an idea, a movement, and a 
decentralized approach for establishing trust online. 
— Lacity & Carmel, 2022 





Jolocom gives a succinct definition for self- 
sovereign identity: 


Self Sovereign Identity refers to a particular model of 
identity in which subjects of identity are able to express their 
identities autonomously and to control their identities on 
their own terms when interacting & communicating with 
other subjects irrespective of context. 


— Jolocom whitepaper, 2019 


In other words, self-sovereign identity is a 
system where users themselves-and not centralized 
platforms or services Like Google, Facebook, or 
LinkedIn-are in control and maintain ownership 
of their personal information. 


In his article “The Path to Self-Sovereign 
Identity? Christopher Allen notes these core 


requirements: 


The user must be central to the administration of identity. 
That requires not just the interoperability of a user’s identity 
across multiple locations, with the user’s consent, but 

also true user control of that digital identity, creating user 
autonomy. To accomplish this, a self-sovereign identity must 
be transportable, it can't be locked down to one site or locale. 


A self-sovereign identity must also allow ordinary users to 
make claims, which could include personally identifying 
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information or facts about personal capability or group 
membership’. It can even contain information about the 
user that was asserted by other persons or groups. 


In the creation of a self-sovereign identity, we must be 
careful to protect the individual. A self-sovereign identity 
must defend against financial and other losses, prevent 
human rights abuses by the powerful, and support the rights 
of the individual to be oneself and to freely associate™. 


Allen goes on to identify a series of ten 


guiding principles — captured in the illustration 
below. 
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+ “Ten Principles of Self-Sovereign Identity” by Christopher Allen (2016), 
illustrated by Jolocom (2019). 


In sum, (Bluesky Community, 2020) self-sovereign 
identity allows a person to: 


* control an account and access private data 

* communicate with another actor 

e establish visible reputation and credibility 

¢ allow authentication and migration between 
services 

¢ allow communication across services 

* create an identity that is unique, global, and 
memorabLe. 


The Building Blocks of SSI 


Vel 6~Key Management 


SSI puts control in the hands of the user, but 
that means users must handle technical steps 
including cryptographic key management. If you 
forget your keys or passwords, it’s not possible 
to recover them because there is no third party 
to rely on. 


Today, many people are trading cryptocurrencies 
using hardware wallets and third party services 
Like Coinbase that require key management. These 
systems use private keypairs that are usually 
very secure, but too hard to use for casual web 
applications Like social media. 


Other decentralized applications use Web wallets 
such as the Metamask browser extension to 
authenticate your identity. The Metamask wallet 
is tied to Ethereum and serves its decentralized 


apps. 


In the future, your browser may have built-in 
tools to manage your cryptographic keys for 
services across the web. 


Some peer-to-peer protocols that already use 
keypairs for identity include Gun, Secure 
Scuttlebutt (SSB), and Peergos. 
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“wae BLockchain-based DNS 


Today, most centralized identity systems rely on 
a DNS, or Domain Name System, that translates 
human readable domain names (for example, www. 
archive.org) to numeric IP addresses that 
computers use to connect to each other. But 
Since the advent of blockchains, many projects 
have created blockchain-based naming systems that 
are decentralized, understandable by humans and 
secure. Namecoin, ENS (Ethereum Name Service), 
Blockstack, and Handshake all use blockchains to 
assign and verify names. 


“ewe Decentralized Identifiers (DIDs) 


DIDs are a new type of globally unique identifier 
(URI) that does not require a centralized 
registration authority Like a DNS because control 
of the tdentifier can be proved using cryptography. This 
could be the core infrastructure of decentralized 
identity and the concept is being formalized 

into an emerging W3C standard, which would make 
DIDs interoperabLe. 


DIDs require a global key-value database in which 
the database is a blockchain, distributed Ledger, 
or decentralized network. 


Some applications using DIDS: 


Jolocom - an open source SSI protocol & smart 
wallet using DIDs and DID documents built on 
Ethereum and IPFS. 

31D/Ceramic - 3ID is an identity system that 
Links a user’s Ethereum address to a DID. 

They are in the process of migrating to a 
blockchain-agnostic DID network called Ceramic. 
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Sovrin - Sovrin is a permissioned blockchain 
identity network that implements DIDs. 
Consensus in the Sovrin network is maintained 
by approved validator nodes. 

ION is a Microsoft-Led DID system. It is an 
implementation of Sidetree, a blockchain- 
agnostic DPKI protocol, that runs on Bitcoin. 


wl Verifiable Credentials (VCs) 


Every time you produce a driver’s License, 
vaccine card, or passport, you are using a 
physical document to verify who you are and 
other personal attributes. But these documents 
can be forged, stolen and are hard to verify by 
a machine. The digital era requires new types of 
credentials. 


Verifiable Credentials (VCs) area standard format 
for the digital representation of credentials that are 
cryptographically secure, verifiable through machines, 
and that guarantee privacy by enabling methods such as 
minimum disclosure. They obey a common structure 
regardless of the attributes contained, making 
it possible, perhaps, to one day have a single 
identity credential. 


Imagine your passport in a secured, digital ID 
wallet that you can use to travel, open a bank 
account, or check into a hotel. 
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Use Cases 


ConDIDI — Conference Digital Identifier Integration - 
aims to use SSI technology to make it easier for 
academic conference organizers and participants 
to track credentials and reputation. It is a 
collaboration of the Leibniz Information Center 


for Science and Technology (TIB) and Jolocom. 





Xride — a showcase for the future of ridesharing, 


where scooters employ processes for payment, 
identity and re-charging that are completely 
decentralized. This month-Long experiment in Bonn 
and Berlin aimed to prototype a less costly, 

more secure and more efficient scooter sharing 
system. It was a collaboration between Deutsche 
TelLekom’s T-Labs and Jolocom. 
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Identity in the Decentralized Web (2019), a blog 
post by Jim Nelson, Internet Archive 


Self-Sovereign Identity (SSI) Explainer, an 8- 
minute video explaining Self-Sovereign Identity 
(SSI) using a real world example of renting a 
property. 


SSI Essentials: Everything you need to know 
about Decentralized Identity. Blog post by 
Gataca.io, 2021 


Self-Sovereign Identity (SSI) 101: Decentralized 
Identifiers (DIDs) & Verifiable Credentials (VCs). 
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The Jolocom SmartWaLllet enables you to create 
and manage your own seLf-sovereign digital 
persona, giving you the ability to provide 
verifiable credibility for your personal 
attributes. 


Super Skills Learning app (2021). The Lego 
Foundation and the Learning Economy Foundation 
create a gamified Learning app for kids which 
showcases all the key components of the 
decentralized identity stacks, with an emphasis 
on DIDs, Verifiable Credentials, and wallets. 
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SeLf-Sovereign Identity: Decentralized Digital 
Identity and Verifiable Credentials is a 2021 
book by Alexander Preukschat and Drummond Reed. 
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Standard, a Proposed Recommendation at W3C, 2021. 
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Whitepaper, 2019. 


A Brief History of SSI: Where Does It Come from? 
A Timeline by Hannah Loskamp, from Jolocom, 2022. 


SELF-SOVEREIGN IDENTITY: The Future of Identity: 
SeLf-Sovereignty, Digital Wallets, and Blockchain. 
White Paper by the Inter American Development 
Bank, 2020. 
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Look Like in 2022?. Tweet from @affinidi. 


Implementing Self-Sovereign Identity (SSI) for a 
(o bss ot) Gh OF Wau a OY <3) 0) gal OU 1 OULU] @N\ nS 3X11 1] fd 0 OY -] 01-1 @ 
about real-world implementation of self-sovereign 
identity, by Mary Lacity and Erran Carmel. 


Panel: Decentralized Identity. Video recording 

of a panel discussion at the Decentralized Web 
Summit 2018, featuring representatives from SSI 
projects around the globe. 


The path to Self-sovereign identity (SSI) in 
research. Video presentation by Lambert Heller 

at the 2nd international Conference on Blockchain 
For Science, Research and Knowledge Creation, 
2019 
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Resources 


GetDWeb.net - web site of the DWeb Community, a 
global network of meetup groups working to build 
a better web, following these core principles 


Redigest - Monthly newsletter by 
Redecentralize.org 


Stories from the Decentralized Web - Medium 
Channel with event recaps, articles & reposts of 
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DWeb Community Calendar 


You can find Links to other great information 
resources on the DWeb Website! 
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Decentralized Apps, the Metaverse and 
the “Next Big Thing” 
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